Radare cheat sheet

Radare project started as a forensics tool, a scriptable command-line hexadecimal editor able to open disk files, but later added support for analyzing binaries,...

Nmap Cheat Sheet

Basic Scanning Techniques Scan a single target nmap Scan multiple targets nmap Scan a list of targets nmap -iL Scan a...

Meterpreter Scripts and Description

Script Commands with Brief Descriptions arp_scanner.rb - Script for performing an ARP's Scan Discovery. autoroute.rb - Meterpreter session without having to background the current session. checkvm.rb -...

15 Vulnerable Offline Web Applications to Practice Security Testing

To improve your pen testing skills yet is important to know how to find bugs and vulnerabilities in web applications. The following offline web...

Pen Testing cheatsheet

Metasploit - spool /home/<username>/.msf3/logs/console.log Save contents from each terminal! Linux - script myoutput.txt # Type exit to stop Disable network-manager service network-manager stop Set IP address ifconfig eth0...

List of Vulnerability Databases

Common Vulnerabilities and Exposures (CVE) - Dictionary of common names (i.e., CVE Identifiers) for publicly known security vulnerabilities. National Vulnerability Database (NVD) - United States...

Docker for Penetration Testing

A collection of docker related links for pen testing docker pull kalilinux/kali-linux-docker official Kali Linux docker pull owasp/zap2docker-stable - official OWASP ZAP docker pull wpscanteam/wpscan - official WPScan docker...

Useful Penetration testing and Security extensions for Google Chrome

XSS Rays Complete XSS reversing/scanner tool. Find how a site is filtering code, check for injections and inspect objects. XSS Rays is a security tool to...

Some useful Firefox Add-ons for Security Researchers and Penetration Testers

Who would have thought you could use Firefox as a penetration and security tool but you can, this list of add-ons will hopefully prove...

Penetration Testing Distributions

https://www.kali.org/ Kali Linux has over 600 preinstalled penetration-testing programs, including Armitage (a graphical cyber attack management tool), Nmap (a port scanner), Wireshark (a packet analyzer),...